Nobody runs a business to think about cyber security
A small-business view of Cyber Essentials - what it actually costs, why a customer is probably about to ask you for it, and how to get certified without losing your weekends.
Author
Paul Kennedy
Cofounder & CEO
Paul cofounded &DEV and runs it day-to-day. Most of his time goes on helping small UK businesses get the boring infrastructure right - Cyber Essentials, ISO 42001, supplier assurance - usually because someone bigger has just asked them for it. He writes here when the same conversation has happened three weeks in a row and is starting to look like a pattern.
Posts by Paul Kennedy
The procurement question that is about to cost you deals
Large buyers are rewriting their supplier assurance frameworks to include AI, and ISO 42001 is becoming the price of entry to the conversation. Here is what that change looks like up close.
The question your audit committee is about to start asking
Audit committees are starting to ask a director-level assurance question about AI. Here is why ISO 42001 is the first thing that gives a sensible answer to it.
ISO 42001 won't save you. Doing it properly might.
ISO 42001 is a useful instrument, but it is not a substitute for understanding what AI is doing inside your business. Here's how to tell which version of the programme you're actually running.